SolarWinds Orion compromise

GPTKB entity

Predicate	Object
gptkbp:instanceOf	cybercrime
gptkbp:affects	gptkb:Department_of_Homeland_Security gptkb:Microsoft gptkb:National_Institutes_of_Health gptkb:FireEye gptkb:U.S._Department_of_State gptkb:U.S._government_agencies gptkb:U.S._Department_of_Commerce gptkb:U.S._Treasury_Department private sector companies
gptkbp:alsoKnownAs	gptkb:SolarWinds_hack
gptkbp:attributedTo	Russian state-sponsored group
gptkbp:discoveredBy	gptkb:FireEye
gptkbp:estimatedAffectedOrganizations	over 18,000
gptkbp:exposedBy	vulnerabilities in software supply chains
https://www.w3.org/2000/01/rdf-schema#label	SolarWinds Orion compromise
gptkbp:involves	supply chain attack
gptkbp:ledTo	increased scrutiny of software supply chains widespread data breaches
gptkbp:method	insertion of malicious code into Orion updates
gptkbp:occurredIn	2020
gptkbp:prompted	gptkb:CISA_emergency_directive Congressional hearings U.S. government response SolarWinds software updates and patches industry-wide security reforms international cybersecurity alerts investigations by U.S. federal agencies review of third-party software security
gptkbp:revealedTo	December 2020
gptkbp:target	gptkb:SolarWinds_Orion_software
gptkbp:usesMalware	gptkb:SUNBURST
gptkbp:bfsParent	gptkb:APT29
gptkbp:bfsLayer	7